Limit Redis cache number of IP addresses#
Security · Azure Cache for Redis · 2022_09
Determine if there is an excessive nunber of permitted IP addresses for the Redis cache.
Description#
Azure Cache for Redis provides the functionality to create firewall rules, limiting the IP addresses that can access the resources. Normally, you want to limit the number of IP addresses permitted through the firewall.
Recommendation#
The Redis cache has greater than ten (10) public IP addresses that are permitted network access. Some rules may not be needed or can be reduced.
Notes#
This rule is not applicable when Redis is configured to allow private connectivity by setting properties.publicNetworkAccess
to Disabled
.
Firewall rules can be used with VNet injected caches, but not private endpoints.
Links#
- How to configure Azure Cache for Redis - Firewall
- Limitations of firewall rules
- Azure deployment reference
Last update:
2023-04-29